Software security testing and techniques

Solution Search:
Test Management Tools and Techniques by Hewlett-Packard Company
This paper explores the challenges and rewards of test management and provides practical ways to help you implement an organized and...
Best Practices for Provisioning Databases for Test and Development by Informatica, formerly Applimation
Best practices and new technologies available for provisioning databases for test and development...
Just Enough Early Architecture to Guide Development by TheServerSide.com
This session is designed to help you capture the best architecture/technical solutions and ensure that they are repeated by all developers. With the domain modeled, basic requirements...
Presentation Download: Backup School 2009 by SearchDataBackup.com
Backup School seminar presentation is guaranteed to provide you with time-tested advice and techniques that will make backup easier. Renowned backup guru W. Curtis Preston will review the basics - but...
Symantec NetBackup OpenStorage Best Practices Guide: Data Domain Deduplication Storage by Data Domain
In this guide, OpenStorage best practices are examined and discussed to assist in eliminating the bottlenecks associated with deployment and...
Symantec NetBackup OpenStorage: Data Domain Deduplication Storage Best Practices Guide by Data Domain
In this guide, OpenStorage best practices are examined and discussed to assist in eliminating the bottlenecks associated with deployment and...
Application Quality Lifecycle: Security, Functional and Performance Testing by Hewlett-Packard Company
and test web applications. HP QAInspect's automated, integrated approach to application security testing is the key to this smarter, faster, better way to move essential business operations online...
Sophos Threat Detection Test by Sophos Inc.
Use the Sophos Threat Detection Test to quickly perform a scan and find any viruses, spyware, adware or zero-day threats that might have by-passed your existing...
Essential Elements of Web Application Penetration Testing by Core Security Technologies
expert Kevin Beaver will share with you what he's learned over the years about Web application security testing so you can maximize the value of your penetration testing efforts. He will outline exactly what...
Using virtualization for testing and development environments by Dell and Microsoft
with WhatIs.com's Alex Howard about the many ways virtualization can be used to improve software testing and development. In this podcast, you'll get expert insight on virtualization concepts, strategies...
Optimize Your Software Processes with CodePro AnalytiX™ by Instantiations
you with the metrics you need to incorporate self-improvement and optimization into the software process. Thus, CodePro AnalytiX is a full set of tools to support your organization in its quest...
Data Privacy-- The Untold Story by IBM
Check out this webcast to learn more about data privacy and how organizations can protect corporate and confidential data throughout the enterprise...
Faster Application Development via Improved Database Change Management by Embarcadero Technologies, Inc.
power of change tracking, schema comparison, software-generated synchronization scripts, and flexible reporting into the hands of the development team. From design to development and from...
IBM Rational Web application security e-Kit by IBM
Check out the IBM Rational Web application security e-kit to gain information and tools that reduce online threats and offer insights about web application security issues...
Syberworks Learning Management System Product Suite by SyberWorks, Inc.
unlimited number of customized private portals targeted to specific audiences. STC includes a testing and assessment feature with pre-tests, post-tests, and over a dozen in-lesson question types, and more...
Best Practices for Implementing Automated Functional Testing by Hewlett-Packard Company
you can take major steps forward to improve automated business processes. Your development and QA teams can increase the speed and accuracy, and your IT department can achieve a higher ROI...
CodePro AnalytiX: Automated Code Quality and Security Analysis for Eclipse Java Developers by Instantiations
adding code audit, security analysis, metrics, test generation, JUnit test editing, code coverage and team collaboration functionality. CodePro AnalytiX is a comprehensive automated software...
Application Lifecycle Management Webcast Series by Hewlett-Packard Company
This new webcast series for Quality Management and Testing Professionals, will explore the extensive new capabilities required to keep pace...
Unify & Automate Management Of Virtual, Physical, Cloud & Hybrid Computing Infrastructures by FastScale Technology
your datacenter and are facing the above challenges, what should you do?

Look to new innovations and techniques that are designed from the ground up to build, optimize, manage and deploy logical servers in...
BMC Software Hybrid Copy Techniques by BMC Software, Inc
Because organizations are demanding 24x7 availability from their IMS, DB2®, and VSAM applications, it is imperative that those applications do not experience outages. Read...
Online Dating: Keeping Your Members Safe from Online Scams and Predators by iovation, Inc.
This whitepaper will help you understand what new and innovative techniques can be used to protect the reputation of your business, keep your...
Vyatta - Open Routing, Firewall, VPN Software by Vyatta Inc.
VPN +) that removes the need for proprietary hardware, allowing you to leverage performance and price advantages of x86-based servers and virtualization technologies. Product Type: Router...
Driving Business Success with Software Reuse by IBM
This white paper explains how Software Reuse and its underlying fundamentals have evolved dramatically. It also discusses the...
HP sample configurations for the HP and SAP Virtualization solution by Hewlett Packard Company and Intel
configurations bring out the unique features provided by the selection of HP ProLiant servers and the options they contain. When virtualizing an SAP environment, it's important to consider...
Software Quality Resources
Learning Guide: Application security testing techniques
wouldn't think twice about it. Yet just a few years ago, the methods for application security testing were limited in both scope and number.

All that has changed. Now the tools and techniques for testing are more sophisticated. We can expect advancements in... More...
Sep 14, 2006
Recipe for successful Web application security testing by Kevin Beaver, CISSP


Paco Hope is a technical manager at Cigital. His areas of expertise include software security, security testing, and online casino gaming. He specializes in analyzing the security of software, software systems, and software development processes.

-----------------------------------------
About the... More...

Nov 28, 2008
Related Tips
Real World Web Security Problems and Solutions - input validation By Kevin Beaver, CISSP
fashion for this tip, I'm going to share with you some common and not-so-common Web-based input validation issues I've discovered.

The most interesting issue I've... More...

Jun 19, 2009
Real World Web Security Problems and Solutions login weaknesses By Kevin Beaver, CISSP
login mechanism evaluated the user's Windows login status and ID and assuming they were logged in on the machine with a valid account access was granted... More...
Jun 19, 2009
Real World Web Security Problems and Solutions - login weaknesses By Kevin Beaver, CISSP
login mechanism evaluated the user's Windows login status and ID and assuming they were logged in on the machine with a valid account access was granted... More...
Jun 19, 2009